Jump to content
Latest News: (loading..)

So_Not_an_HTML_genius

Members
  • Content count

    73
  • Joined

  • Last visited

Everything posted by So_Not_an_HTML_genius

  1. So_Not_an_HTML_genius

    How to install add on to fix PayPal standard

    I did figure out what I was doing wrong - talk about complicating something that was fairly easy. All I had to do was ftp the folder and then each file. sigh BTW, I did use the first add on link that you gave me and I am so thankful for that module. But here is another question, I have tested the site now and this is definitely fixing the issue. However, as a customer - I received confirmation of the order from PayPal but when I went back into my store my shopping cart still had the same item in it. As the store owner, I went into the order and there was an x next to updating customer. As the administrator I can send them an update - which is fine but again when the customer signs in to their account the item is still in their shopping cart. Thanks, Kelly
  2. So_Not_an_HTML_genius

    How to install add on to fix PayPal standard

    Hi There, I am using Os Commerce 2.2 MS2, PHP version 5.2.17 We are only offering our customers to pay through PayPal and already have a PayPal Business account. The problem is when customers do not have a PayPal account and do not hit the return button, their order is gone from my store. I recently thought the add package called: paypal_standard_1.0 could help me. I want to keep the standard checkout. But, I cannot get past the first installation that says: The file listing is as follows: • ext/modules/payment/paypal/standard_ipn.php • includes/languages/english/modules/payment/paypal_standard.php • includes/languages/espanol/modules/payment/paypal_standard.php • includes/languages/german/modules/payment/paypal_standard.php • includes/modules/payment/paypal_standard.php I don't have a clue on the first file listing the ext/modules...etc. I don't have a folder in my os commerce file database called ext I guess this will really show how little I know but if someone can steer me into the right direction. I don't understand there the standard_ipn.php goes. I could really use the help because right now I have people making payments and no order to go with it because they are not returning to the store. HELP please! Thanks, Kelly
  3. So_Not_an_HTML_genius

    Paypal not redirecting on Credit Card Purchases

    Has anyone helped you with this issue? We now only take payments through paypal. Again, if they have an account in PayPal it is fine but if they pay without a PayPal account and only pay with a credit card through paypal, they do not get redirected and their cart is lost. I then end up with a payment and no order in the os commerce. Any help is welcome! Thanks, Kelly
  4. So_Not_an_HTML_genius

    Need to upgrade version

    Hi Everyone, I am in need to upgrade my oscommerce. I am embarrassed to say we are still running 2.2-MS2. I have always been of the mind set that if it works don't fix it. But, I really need to upgrade as we are getting hassled by our PCI scanning company that we have to upgrade. So, the question is this, on the front page of OSCommerce there is a file that says "complete" update package, does that mean I can load that and does it update like regular software? Can I just load it in and all my existing store items will remain there? You know when you update existing software on your computer - if you upgrade to a higher Word program you don't have to redo all your files. Something like that? I was given 4 different websites that had 2 pages each worth of documentation to supposedly update. Isn't there an easier way? If not, is there a way to temporarily turn off the search function for now? Thanks, Kelly
  5. So_Not_an_HTML_genius

    Need to upgrade version

    Hi Chris, When you say import (again excuse my very basic knowledge of oscommerce) is there a way to import the items through the database so that I don't have to create the categories, products etc. all over again? Thanks, Kelly
  6. So_Not_an_HTML_genius

    need and easy thumbnail add on

    Hi, I am just trying to find an easy thumbnail add on. I recently reviewed one called Club Oscommerce Easy Thumbnail. What I am confused about is changing and backing up my SQL database. I don't exactly know how to do that. I don't even really understand the darn thing and maybe it is my host provider's control panel for it, I don't know. Is there anywhere that offers a competent tutorial on how to manage databases? I tried using a different thumbnail add on but it didn't make sense. Also, we currently don't have GD Library etc. to use automatic thumbnails or fancy pop up boxes - I would love to work with that but that is a little beyond what I am ready to tackle. Bottom line, I am only using oscommerce's automatic "squishing" of the big image which we made our images a certain size so that proportionally it works fine but I want to speed up our store. We have about 250 products/images now so that is a lot of pages to change to thumbnails but I am looking for a way to make our store run better. I appreciate any help. Thanks, Kelly
  7. So_Not_an_HTML_genius

    Coupon code for specific item only

    Can anyone tell me, is there a way to limit customers to only one item per coupon. I don't care what item they use but let's say for example I am offering a 50% coupon but the customer and only use it on one item, is there anyway to do that? Thanks Kelly
  8. So_Not_an_HTML_genius

    need and easy thumbnail add on

    Thank you! I have to laugh the "older and simpler" sounds just like me...ha, ha, ha! Just Kidding. Thanks again!
  9. So_Not_an_HTML_genius

    need and easy thumbnail add on

    Okay, let me expand on my question. I found an add-on that says to configure the SQL database as follows (this is just a portion of the install): INSERT INTO configuration (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, date_added) VALUES ('Thumbnail Width', 'THUMBNAIL_WIDTH', '200', 'Thumbnail Image Width', '50', '3', now()); INSERT INTO configuration (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, date_added) VALUES ('Thumbnail Height', 'THUMBNAIL_HEIGHT', '200', 'Thumbnail Image Height(will not work if aspect ratio is true)', '50', '4', now()); What if I want a thumbnail that is 100 x 100, is it possible to just change the number '50' in this add-on to '100' to customize the thumbnail I want? I just want to make thumbnails for my existing images and do not want to use an automatic thumbnailer. We are artists so doing things manually in our photoshop is not a problem. I would really appreciate any help. Thanks again, Kelly
  10. So_Not_an_HTML_genius

    [Contribution] Discount Coupon Codes

    After loading and editing, the coupon works but like the poster at the beginning said, it is doubling the item amount. If the item costs $10.00, it shows the coupon discount (lets say -$2.00) and then the subtotal says $18.00. I did get one suggestion but it is still doing it. Does anyone have any thoughts on this? I would love to use this contribution but cannot at this point. Thanks, Kelly
  11. So_Not_an_HTML_genius

    [Contribution] Discount Coupon Codes

    Hi, I pm'd you but I figured I would post here too in case you didn't get it. I ran into the same problem and wondered what you fixed. Thanks
  12. Hi, I am really new at this addon php code. Here is the add on for the antixss // Remove XSS ATTACK function RemoveXSS(&$val,$key) { // remove all non-printable characters. CR(0a) and LF(0b) and TAB(9) are allowed // this prevents some character re-spacing such as <javascript> // note that you have to handle splits with n, r, and t later since they *are* allowed in some inputs $val = preg_replace('/([x00-x08][x0b-x0c][x0e-x20])/', '', $val); // straight replacements, the user should never need these since they're normal characters // this prevents like <IMG SRC=@avascript:alert('XSS')> $search = 'abcdefghijklmnopqrstuvwxyz'; $search .= 'ABCDEFGHIJKLMNOPQRSTUVWXYZ'; $search .= '1234567890!@#$%^&*()'; $search .= '~`";:?+/={}[]-_|'\'; for ($i = 0; $i < strlen($search); $i++) { // ;? matches the ;, which is optional // 0{0,7} matches any padded zeros, which are optional and go up to 8 chars // @ @ search for the hex values $val = preg_replace('/([x|X]0{0,8}'.dechex(ord($search[$i])).';?)/i', $search[$i], $val); // with a ; // @ @ 0{0,7} matches '0' zero to seven times $val = preg_replace('/({0,8}'.ord($search[$i]).';?)/', $search[$i], $val); // with a ; } // now the only remaining whitespace attacks are t, n, and r $ra1 = Array('javascript', 'vbscript', 'expression', 'applet', 'meta', 'xml', 'blink', 'link', 'style', 'script', 'embed', 'object', 'iframe', 'frame', 'frameset', 'ilayer', 'layer', 'bgsound', 'title', 'base'); $ra2 = Array('onabort', 'onactivate', 'onafterprint', 'onafterupdate', 'onbeforeactivate', 'onbeforecopy', 'onbeforecut', 'onbeforedeactivate', 'onbeforeeditfocus', 'onbeforepaste', 'onbeforeprint', 'onbeforeunload', 'onbeforeupdate', 'onblur', 'onbounce', 'oncellchange', 'onchange', 'onclick', 'oncontextmenu', 'oncontrolselect', 'oncopy', 'oncut', 'ondataavailable', 'ondatasetchanged', 'ondatasetcomplete', 'ondblclick', 'ondeactivate', 'ondrag', 'ondragend', 'ondragenter', 'ondragleave', 'ondragover', 'ondragstart', 'ondrop', 'onerror', 'onerrorupdate', 'onfilterchange', 'onfinish', 'onfocus', 'onfocusin', 'onfocusout', 'onhelp', 'onkeydown', 'onkeypress', 'onkeyup', 'onlayoutcomplete', 'onload', 'onlosecapture', 'onmousedown', 'onmouseenter', 'onmouseleave', 'onmousemove', 'onmouseout', 'onmouseover', 'onmouseup', 'onmousewheel', 'onmove', 'onmoveend', 'onmovestart', 'onpaste', 'onpropertychange', 'onreadystatechange', 'onreset', 'onresize', 'onresizeend', 'onresizestart', 'onrowenter', 'onrowexit', 'onrowsdelete', 'onrowsinserted', 'onscroll', 'onselect', 'onselectionchange', 'onselectstart', 'onstart', 'onstop', 'onsubmit', 'onunload'); $ra = array_merge($ra1, $ra2); $found = true; // keep replacing as long as the previous round replaced something while ($found == true) { $val_before = $val; for ($i = 0; $i < sizeof($ra); $i++) { $pattern = '/'; for ($j = 0; $j < strlen($ra[$i]); $j++) { if ($j > 0) { $pattern .= '('; $pattern .= '([x|X]0{0,8}([9][a]);?)?'; $pattern .= '|({0,8}([9][10][13]);?)?'; $pattern .= ')?'; } $pattern .= $ra[$i][$j]; } $pattern .= '/i'; $replacement = substr($ra[$i], 0, 2).'<x>'.substr($ra[$i], 2); // add in <> to nerf the tag $val = preg_replace($pattern, $replacement, $val); // filter out the hex tags if ($val_before == $val) { // no replacements were made, so exit the loop $found = false; } } } return $val; } When I copy and paste this entire information and place it in my general file as described above, my entire online store disappears. I migt be missing something in the information above. Are they really saying to actually copy and paste that entire code? Is there something else special in that information that I am missing? Any help would be appreciated. Thanks, K
  13. So_Not_an_HTML_genius

    Having trouble with antixss security addon

    Well, that would make sense. Thank you again for the help. With all that I did to this point with my site I am now PCI compliant so I am happy without this last bit for now. -Kelly
  14. So_Not_an_HTML_genius

    Having trouble with antixss security addon

    Hi germ, Thank you for that input, after fixing that code line, I was successful in adding that code to my general.php without any issue to my store. However, when I got to the next step and added the next part to the application_top.php once again after saving my store disappeared when I went to go view it. Here is what is in the instructions for the second part: open: catalog/includes/application_top.php find: // define general functions used application-wide require(DIR_WS_FUNCTIONS . 'general.php'); require(DIR_WS_FUNCTIONS . 'html_output.php'); Add below: if (!empty($_POST)) array_walk_recursive($_POST, 'RemoveXSS'); if (!empty($_GET)) array_walk_recursive($_GET, 'RemoveXSS'); if (!empty($_COOKIE)) array_walk_recursive($_COOKIE, 'RemoveXSS'); if (!empty($_SERVER)) array_walk_recursive($_SERVER, 'RemoveXSS'); if (!empty($_SESSION)) array_walk_recursive($_SESSION, 'RemoveXSS'); if (!empty($_REQUEST)) array_walk_recursive($_REQUEST, 'RemoveXSS'); Is there anything wacky here? Thanks again! Kelly
  15. So_Not_an_HTML_genius

    What is the Paypal IPN url I need to type in?

    Hello again, Well, actually I figured out what to do and it is funny that it is an answer that PayPal did not want to give me. First off, when I contacted Paypal for help, I was first told that the problem was due to my having a third party commerce. Then I was told I needed to get the Manual (that she would send me), I had to integrate my instant payment notification, I would then need the correct code from html and figure out how to transfer that to PHP to put into my store which was something they did not know how to do and could not help me......blah, blah, blah But, I pieced together some info found from posts here, and did some searching on PayPal myself. You go into your PayPal Profile Choose Website Payment Preferences Auto Return needs to be on url for this should be: https://www.yoursitename/store/catalog/checkout_process.php (if you have a different name for your store then insert it there) What will happen is this, when your customers pay via paypal from your store, once their payment is completed, they are automatically returned from paypal back to your store to their checkout and voila the order is completed! The reason PayPal doesn't instruct this (in my opinion) is that logically most customers will hit the "continue" button on PayPal which brings them to PayPal's solicitations. Even if this had nothing to do with my orders being lost, I still think it is a great idea to send people back to your site...why should they be stuck at PayPal when they were your customers to begin with. Thanks for your time, so glad so many of you post your experiences for the rest of us to peruse and use! Kelly
  16. Hi, I hope someone out there can help. I have been successfully using oscommerce for a year now. I have been getting all my orders without issue even the PayPal orders. Everything has been working just fine until just recently PayPal decided to upgrade their processing and change what was working. At this time, when my customers are transferred to the paypal website to pay for their order, they then get a confirmation page from paypal that says payment complete but then they are offered two buttons, one non-descript button below their name and address and confirmation of payment amount that says "Return to ...(my website)" or they can click on the Continue button or just close the window. If they choose the Continue button, the order disappears in my oscommerce and yet I have money received in my PayPal account. If they close the window the same thing happens. Basically, if they do not choose to go back to my website, the order is never confirmed and disappears. Now, who on earth would go back to a website they just finished an order with???? Well, apparently NOT my customers. I have lost the 3 orders in the last few weeks due to customers not going back. I can add text to my store to say go back but we all know people do not read! Paypal's answer to me was that I needed to set up the IPN section of their site. This includes checking the box and then entering the URL. WHAT is the URL that I need to type??? Then, what do I need to do in my store?? Anything??? Please keep in mind when answering this question...I am a real newbie with PHP so keep it in simple terms that a non-programmer could understand! :huh: THanks, Kelly
  17. So_Not_an_HTML_genius

    Need to add the CVV2 from customer's credit card

    Hi, I am just a bit lost. I am learning oscommerce but am really a newbie at this. I have installed the oscommerce on my site and have been using it successfully for three months now. We have our own merchant account so all I do is have customers put in credit card numbers, I do not have nor want a gateway. Anyway, our merchant services are upgrading and I need to start requesting customers to input their CVV2 numbers from the signature line of their credit card. I do not know how to do this. I am running the oscommerce 2.2 MS2 php version 4.4.1 I truly don't know where to add modules. I did see a page here on the oscommerce site for Payment modules but have no clue where to add them. Any help would be great. Thank you, Kelly
  18. So_Not_an_HTML_genius

    Need to add the CVV2 from customer's credit card

    Hello KGT, Again, I thank you for your information and your continued updating of all users that accept credit cards to have the best security. I do have a dedicated server at a host location but the difference is this, I control the oscommerce on my website, they do not. I have all the folders password protected from my end and my host does not have access what so ever to our folders or files. Basically the only thing they can do is delete and re-boot the server which would result in a serious penalty to the host but NO exposer of liability. All CC info entered and submitted by a customer is encrypted on it's way up to the secure password protected folder. Then we access it through our encrypted password. This proceedure has been certified to meet and exceed all Visa / Mastercard International standards for Merchant security encryption. We are reviewed monthly by our bank. The only difference between a gateway processing plan and our direct inputing the cc data is that we handle the data input processing directly. In our view and our banks that is far more secure than going through a gateway that is operated by another firm or third party. Thanks again.
  19. So_Not_an_HTML_genius

    Need to add the CVV2 from customer's credit card

    Hello again, Thank you for the reply. By the Way kgt, maybe I am mixing terms here. I do have an SSL and am on a dedicated server...my store part that accepts credit card information is not on a shared host and the database is secure. Sorry if by saying I do not have a gateway that it sounded like it was not secured. The term for online automatic processing of credit cards through a verified company where you never get the credit card information is the part of the 'gateway' that I am talking about. We process all the credit cards ourselves on our own merchant verifone and have done so for 14 years. I would never take chances nor would our merchant services allow us an account if we did not have an SSL. The only reason why I am asking all these questions regarding the oscommerce is because we were a Qstore user for 14 years until no host companies would carry that software anymore because it was a bear to run. It needed to stay on a cobalt server, ran slower and needed a lot of space etc. to run. But, anytime you moved the darn thing, the owner of the software expected you to purchase an additional license for it to run on another server, he refused to grant our company a license to own it and move it where ever we wanted. I hung on as long as I could as our store has a ton of products and the idea of learning something new really horrified me. But that is why I like the oscommerce. I can bring it to almost any server and with groups like this, I am learning how to use it better and better. Thanks again for the info. Kelly
×